Posted by As'ad Naufal
Wednesday, August 22, 2012
Requirements: Android 2.1+ (rooted) Overview: FaceNiff is an Android app that allows you to sniff and intercept web session profiles over the WiFi that your mobile is connected to.
It is possible to hijack sessions only when WiFi is not using EAP, but it should work over any private networks (Open/WEP/WPA-PSK/WPA2-PSK). It's kind of like Firesheep for android. Maybe a bit easier to use (and it works on WPA2!). Please note that if webuser uses SSL this applicationwon't work.
Legal notice: this application is for educational purposes only. Do not try to use it if it's not legal in your country. I do not take any responsibility for anything you do using this application. Use at your own risk
Quick steps: With your Wi-Fi on, install FaceNiff, run it, close it and run the unlocker. After your key has been generated, you may remove the unlocker. Note: I've successfully tested the unlocker on my device with two MAC addresses, and lohan has reported success with his device.